All replies

Anonymous is a permission group - a group of users who are allowed to use the connector. This does not grant those people rights to
relay without authenticating. To do this, you would also need to set the connector to "externally secured". Be careful with this however. That would let ANYONE that can connect to that receive connector relay email to anywhere. This
is known as an open relay and can cause a lot of spam.

Actually I already have one receive connector for my external servers. They can make relay through him.
This receive connector
conection on 25 port only from a separate list of ip. In autentification tab I enable only Transport
Layer Security (TLS). In permishion group I have only anonimous users enabled.

For test I try to add external ip of mail server who serv fabrika.com. No good result.

Also I create another one
receive connectorjust
like relay connector before but thith only one exretnal ip of fabrika.com. After that I make cmdlet to him
Get-ReceiveConnector
"My-Server-Connector" | Add-ADPermission -User "NT AUTHORITY\ANONYMOUS LOGON" -ExtendedRights "Ms-Exch-SMTP-Accept-Any-Recipient". But steel no good result.

In both cases I am reboot the server.

So what I try to accomplish... right now I have only one problem. Then I try to make telnet from inside to my exchange to 25 port and make for example:

MAIL FROM:gmail@gmail.com => Sender OK!

MAIL FROM:microsoft@microsoft.com => Sender OK!

MAIL FROM:
any fictitious address dot any => Sender OK!

But if I try to make

MAIL FROM:test@fabrika.com => 5305.7.1
Client was not authenticated

So problem ONLY with this domain fabrika.com .

As I right understand some time ago (before me) in this organization was install MS Exchange Server 2003 who served domain fabrika.com.

Right now I do not now what happened bu maybe this server was not correctly uninstall.

>Actually I already have one receive connector for my external servers. They can make relay through him. This receive connector conection on 25 port only from a separate list of ip. In autentification tab I enable only Transport Layer Security (TLS). In
permishion group I have only anonimous users enabled.

>

>For test I try to add external ip of mail server who serv fabrika.com. No good result.

>

>Also I create another one receive connectorjust like relay connector before but thith only one exretnal ip of fabrika.com. After that I make cmdlet to him Get-ReceiveConnector "My-Server-Connector" | Add-ADPermission -User "NT AUTHORITY\ANONYMOUS LOGON"
-ExtendedRights "Ms-Exch-SMTP-Accept-Any-Recipient". But steel no good result.

>

>In both cases I am reboot the server.

>

>So what I try to accomplish... right now I have only one problem. Then I try to make telnet from inside to my exchange to 25 port and make for example:

>

>MAIL FROM:gmail@gmail.com => Sender OK!

>

>MAIL FROM:microsoft@microsoft.com => Sender OK!

>

>MAIL FROM: any fictitious address dot any => Sender OK!

>

>But if I try to make

>

>MAIL FROM:test@fabrika.com => 530 5.7.1 Client was not authenticated

>

>So problem ONLY with this domain fabrika.com .

>

>As I right understand some time ago (before me) in this organization was install MS Exchange Server 2003 who served domain fabrika.com.

>

>Right now I do not now what happened bu maybe this server was not correctly uninstall.

Check the SMTP receive protocol log and verify that the connection is

using the Receive Connector you think it is. Also check the IP address

About CUSTOM, then you create new connector via GUI wizard is asking you - Select the intended use for this Receive connector - and you can chose CUSTOM. Perhaps this is the answer.

Before I already try to create another one receive connector (allow anonymous SMTP relay from only one ip of fabrika.com) result was the same.

Wednesday, June 13, 2012 2:45 PM

Microsoft is conducting an online survey to understand your opinion of the Technet Web site. If you choose to participate, the online survey will be presented to you when you leave the Technet Web site.